ZDNet: Both Sides of the CERT Argument Jan 10, 2006, 22 :00 UTC (2 Talkback[s]) (4867 reads)
Why CERT Should Be Decertified (1)
"Last week the CERT Institute developed at Carnegie Mellon University and now part of the 'the operational arm of the National Cyber Security Division (NCSD) at the Department of Homeland Security,' issued an annual systems security review and summary that drew widespread public attention.
Both the computer press and the mainstream media used this report as the basis for headlines that looked like this one Linux/Unix more flawed than Windows, CERT says from news.com..."
"In last Friday's article 'Experts question Windows win in flaw tally,' scores of security experts came out to defend Linux and Unix. A spokesperson for Secunia questioned the count claiming that Linux/Unix vulnerabilities were less severe because a smaller percentage of Linux and Unix vulnerabilities were remotely exploitable. Red Hat's Cox said that 'Linux operating systems were more secure for businesses than Windows platforms, as fewer vulnerabilities were critical and patches were brought out more quickly.' Since these claims are easily verifiable using Secunia's own advisory database, let's have a look..."
